Refresh Token

Generates a new access token and refresh token for a user using the refresh token

For more information, see Advanced Authentication.

Headers

Accept
Type: string
required

Advertises which content types the client is able to understand
Content-Type
Type: string
required

Set this header to application/json
User-Agent
Type: string
required

For details, see User Agent.

Body·

required

application/json

client
Type: string
required

OAuth client ID provided by the business. Required to identify the client application for token refresh.
refresh_token
Type: string
required

Refresh token that the client application can use to get new tokens without re-authenticating. You can retrieve the value of the refresh_token from the response of the Verify Token.

Responses

application/json
application/json
application/json
application/json
application/json

post/api2/password_less/refresh_token

curl https://SERVER_NAME_GOES_HERE/api2/password_less/refresh_token \
  --request POST \
  --header 'Accept: application/json' \
  --header 'Content-Type: application/json' \
  --header 'User-Agent: Punchh/OnlineOrder/1.0/Web/BrowserVersion/OS_Type' \
  --data '{
  "client": "CLIENT_GOES_HERE",
  "refresh_token": "REFRESH_TOKEN_GOES_HERE"
}'

Show Schema

{
  "data": {
    "access_token": "ACCESS_TOKEN_GOES_HERE",
    "token_type": "Bearer",
    "refresh_token": "REFRESH_TOKEN_GOES_HERE",
    "expires_in": 1800
  }
}